diff options
| author | Luke Shumaker <lukeshu@sbcglobal.net> | 2016-05-01 15:17:42 -0400 |
|---|---|---|
| committer | Luke Shumaker <lukeshu@sbcglobal.net> | 2016-05-01 15:17:42 -0400 |
| commit | f7d4cf9ed0ae68fec630d14e8f6aade38e49f036 (patch) | |
| tree | a730c57badbe0e2f0f064ca2006c82d4b6ed54ea /includes/DefaultSettings.php | |
| parent | aee35e4a93d105024bcae947cd8b16c962191f5c (diff) | |
| parent | 5d1e7dd0ccda0984ccf3e8e3d0f88ac888b05819 (diff) | |
Merge commit '5d1e7'
Diffstat (limited to 'includes/DefaultSettings.php')
| -rw-r--r-- | includes/DefaultSettings.php | 14 |
1 files changed, 13 insertions, 1 deletions
diff --git a/includes/DefaultSettings.php b/includes/DefaultSettings.php index 71268932..aad42aac 100644 --- a/includes/DefaultSettings.php +++ b/includes/DefaultSettings.php @@ -75,7 +75,7 @@ $wgConfigRegistry = array( * Using single quotes is, therefore, important here. * @since 1.2 */ -$wgVersion = '1.24.1'; +$wgVersion = '1.24.2'; /** * Name of the site. It must be changed in LocalSettings.php @@ -4146,6 +4146,18 @@ $wgPasswordSalt = true; $wgMinimalPasswordLength = 1; /** + * Specifies the maximal length of a user password (T64685). + * + * It is not recommended to make this greater than the default, as it can + * allow DoS attacks by users setting really long passwords. In addition, + * this should not be lowered too much, as it enforces weak passwords. + * + * @warning Unlike other password settings, user with passwords greater than + * the maximum will not be able to log in. + */ +$wgMaximalPasswordLength = 4096; + +/** * Specifies if users should be sent to a password-reset form on login, if their * password doesn't meet the requirements of User::isValidPassword(). * @since 1.23 |